XDR Gains Attention Amid Security Operations Challenges

XDR Gains Attention Amid Security Operations Challenges

By Greg Tavarez

Security operations demand massive scale to collect, process, analyze and act upon large amounts of data. Early extended detection and response, or XDR, was an improvement on disconnected EDR and NDR tools, but security operations challenges continued to arise.

Trellix, a cybersecurity company delivering XDR, released findings from its “SOC Modernization and the Role of XDR” report and examined the state of security operations amid a challenging landscape. Not surprisingly, more than half of respondents believe their organization’s security operations environment has become more difficult to manage over the last two years.

The rise in difficulty is due to the increasingly dangerous threat landscape, a growing attack surface, the volume and complexity of security alerts and public cloud proliferation. To cope with the increasing threat volume and IT scale/sprawl, organizations have several initiatives focused on SOC modernization.

It’s not just the IT landscape, though, that is contributing to security challenges.  Eight-one percent of companies also say the cybersecurity skills shortage is impacting their operations.

Understaffed areas of security operations include:

  • Security architect (37%)
  • Security engineers (35%)
  • Tier-3 analysts (34%)
  • Vulnerability assessment/prioritization analysts (33%)

Cybersecurity skills shortages typically lead to increasing workload on existing staff as well as staff attrition and burnout – all of which increases risk within an organization.

Amid these cybersecurity challenges, XDR continued to gain more industry attention. In fact, 61% of security professionals claim they are very familiar with XDR technology. There is work still to do when it comes to raising XDR awareness, as 39% are still only somewhat familiar, not very familiar or not at all familiar with it.

Users are also confused about what XDR really is. A little more than half of security pros say XDR is an extension of EDR. About 44% believe XDR is a detection and response product from a single security technology vendor or an integrated and heterogeneous security product architecture designed to interoperate and coordinate on threat prevention, detection and response.

Regardless of how XDR is defined, security professionals continue to show interest in using XDR to help them address several threat detection and response challenges.

Edited by Erik Linask
Get stories like this delivered straight to your inbox. [Free eNews Subscription]

MSPToday Editor

Related Articles

ICYMI: What's Happening in the MSP Industry?

By: Greg Tavarez    7/19/2024

Here are a few articles compiled into one for readers interested in developments around the MSP space.

Read More

Global Microsoft Outage Linked to CrowdStrike: What Happened, and What's Next

By: Alex Passett    7/19/2024

A massive global Microsoft outage has reportedly stemmed from a misconfigured update from cybersecurity company CrowdStrike.

Read More

MSPs: When is it Time to Evolve Your Brand, Positioning, and Marketing?

By: Contributing Writer    7/18/2024

From the rise of AI to the increase in cyber attacks and the shift to hybrid offices, dynamic forces are driving stronger demand for managed services.…

Read More

Assuring Top-Notch Cybersecurity: Assura and Stellar Cyber Announce New Partnership

By: Alex Passett    7/18/2024

Assura, Inc. and Stellar Cyber have announced a strategic partnership aimed at bolstering both offensive and defensive cybersecurity capabilities for …

Read More

Unveiling Seismic LLC's Unique Value Proposition: An Interview with Richard Cabelo

By: Rich Tehrani    7/18/2024

Seismic is distinctively purpose-built to empower MSPs, VARs, integrators, OEMs, and distributors with the resources and agility needed to achieve bes…

Read More